23 of 23 Permanent Threat Detection Jobs in the Thames Valley

on advanced security challenges within an award-winning MSSP? This is your opportunity to integrate, optimise, and innovate within Microsoft Sentinel, ensuring top-tier threat detection and security solutions for clients. As a Microsoft Security Engineer, you'll play a crucial role in securing critical infrastructure, enhancing log … meetings as required Your Role: Securing and Optimising Microsoft Sentinel You'll be responsible for end-to-end log integrations, optimising data ingestion, enhancing detection capabilities, and proactively refining security processes to strengthen client defenses. Key Responsibilities Integrate log sources into Sentinel, ensuring seamless threat detection. Develop, troubleshoot … designs, creating technical processes and standardised procedures. Maintain & enhance DevOps pipelines, ensuring scalable security operations. Conduct Sentinel health checks, periodic maintenance, and fine-tune detection rules. Collaborate with Analysts and cybersecurity teams, refining detection strategies and reducing false positives. Analyse security logs from diverse sources, including cloud platforms More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for More ❯

companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and …/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. More ❯

companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and …/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. More ❯

companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and …/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. More ❯

companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and …/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. More ❯

companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and …/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. More ❯

that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint … cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through … organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available More ❯

that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint … cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through … organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available More ❯

threats, this role could be for you! The difference you'll make: Review and analyze security logs and data to investigate alerts Support proactive threat hunting on the network Provide SME support within Cyber Security and the wider bank Develop and refine detection use cases Manage workload of … security alerts, ensuring thorough investigations Participate in a 24/7 on-call rotation for cyber threat response What you'll bring: Essential requirements: Knowledge and experience in Cyber Security disciplines such as network analysis, host analysis, malware analysis, penetration testing, EDR, SIEM, vulnerability management, or incident response in … cloud environments Experience working within a SOC or similar team investigating security alerts Understanding of Threat Actor Tactics, Techniques, and Procedures Knowledge of operating systems and relevant logs/artifacts for threat detection Desirable qualifications: Degree or equivalent in a security-related field or relevant certifications like More ❯

understanding of SecOps concepts, technologies, and best practices, specifically across IT and OT environments. You will be tasked with ensuring robust incident management, proactive threat detection, and continuous improvement of our security posture. Strong communication and collaboration skills are essential as you will work closely with cross-functional … Risk Remediation: • Identify, analyse, and evaluate security risks, applying a risk-based approach to implement appropriate and proportionate controls. • Perform proactive activities such as threat hunting to uncover vulnerabilities and ensure continuous risk reduction. • Provide tangible metrics to demonstrate risk reduction and reduced technical debt. Incident Readiness & Response: • Lead More ❯

that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint … cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through … organizations worldwide from phishing, ransomware, data theft, other everyday and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at More ❯

that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint … cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through … organizations from phishing, ransomware, data theft, and other everyday and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at More ❯

experts in a forward-thinking academic environment. Access ongoing professional development opportunities and cutting-edge security tools. Responsibilities: Lead and manage security operations, including threat detection, incident response, and vulnerability management. Act as a technical manager for identity and access management services, ensuring secure, automated access for university … staff and students. Design and implement long-term security strategies, focusing on automation and proactive threat detection. Oversee the outsourced 24/7 security operations service, ensuring seamless protection of critical infrastructure. Build strong rel... More ❯

to secure, protect, manage, and derive value from data across data centers, edge, and cloud, with a focus on cybersecurity threats, immutable backups, AI threat detection, and rapid recovery. Recognized globally for innovation, product strength, and design simplicity, Cohesity is shaping the future of data security. Join us More ❯

configure networking components to ensure efficient and secure communication between services. Develop and implement security best practices, including identity and access management, encryption, and threat detection. Monitor and manage detection contracts to ensure timely identification and resolution of security incidents. Automate infrastructure provisioning, deployment, and management using Infrastructure … Strong background in networking, including VPN, DNS, load balancing, and firewall configurations. Demonstrated expertise in security practices, including identity and access management, encryption, and threat detection. Experience with detection contracts and monitoring tools to identify and respond to security incidents. Proficiency in scripting languages such as Python, Bash More ❯

configure networking components to ensure efficient and secure communication between services. Develop and implement security best practices, including identity and access management, encryption, and threat detection. Monitor and manage detection contracts to ensure timely identification and resolution of security incidents. Automate infrastructure provisioning, deployment, and management using Infrastructure … Strong background in networking, including VPN, DNS, load balancing, and firewall configurations. Demonstrated expertise in security practices, including identity and access management, encryption, and threat detection. Experience with detection contracts and monitoring tools to identify and respond to security incidents. Proficiency in scripting languages such as Python, Bash More ❯

configure networking components to ensure efficient and secure communication between services. Develop and implement security best practices, including identity and access management, encryption, and threat detection. Monitor and manage detection contracts to ensure timely identification and resolution of security incidents. Automate infrastructure provisioning, deployment, and management using Infrastructure … Strong background in networking, including VPN, DNS, load balancing, and firewall configurations. Demonstrated expertise in security practices, including identity and access management, encryption, and threat detection. Experience with detection contracts and monitoring tools to identify and respond to security incidents. Proficiency in scripting languages such as Python, Bash More ❯

configure networking components to ensure efficient and secure communication between services. Develop and implement security best practices, including identity and access management, encryption, and threat detection. Monitor and manage detection contracts to ensure timely identification and resolution of security incidents. Automate infrastructure provisioning, deployment, and management using Infrastructure … Strong background in networking, including VPN, DNS, load balancing, and firewall configurations. Demonstrated expertise in security practices, including identity and access management, encryption, and threat detection. Experience with detection contracts and monitoring tools to identify and respond to security incidents. Proficiency in scripting languages such as Python, Bash More ❯